Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/sxdn1gz3HdIddw_-kzbs1Ys83Qc.roa
File: sxdn1gz3HdIddw_-kzbs1Ys83Qc.roa (raw, json)
Hash identifier: +LpeyAzJttsxJUY+qRbPB6f9SWY63lV5xqZxHGYpjH8=
Subject key identifier: B3:17:67:D6:0C:F7:1D:D2:1D:77:0F:FE:93:36:EC:D5:8B:3C:DD:07
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018E2E3CE068FFCEE5C49015DE2AE43BCBCB
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/sxdn1gz3HdIddw_-kzbs1Ys83Qc.roa
Signing time: Mon 11 Mar 2024 15:58:45 +0000
ROA not before: Mon 11 Mar 2024 15:58:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203394
IP address blocks: 212.193.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 05:55:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2e:3c:e0:68:ff:ce:e5:c4:90:15:de:2a:e4:3b:cb:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 11 15:58:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b31767d60cf71dd21d770ffe9336ecd58b3cdd07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:75:0c:1c:62:1c:21:de:c0:32:ef:b9:0c:1c:
f4:13:38:7c:af:45:55:fe:dc:0e:23:b7:77:a9:2b:
c1:cf:e6:84:e1:11:71:11:42:1d:1d:5a:4f:14:a3:
23:8b:80:f4:23:91:4a:21:7e:a0:a7:0a:42:48:c5:
49:f8:8e:ef:7c:7e:48:e5:9d:c5:fa:a3:b1:1b:7d:
42:da:68:a3:77:72:7a:bf:fe:b2:00:90:4d:d8:60:
6d:e5:bf:98:99:12:76:2b:c1:bc:be:21:f6:5e:ef:
81:50:19:a7:de:6a:df:ff:68:5b:0e:60:27:4f:93:
ca:a6:c9:88:8c:01:e4:68:6b:36:2d:c3:09:c0:5a:
56:45:87:43:d9:cf:25:46:dd:ad:61:90:01:53:f9:
9f:80:ae:45:29:dd:d9:d9:df:a3:d5:03:b4:81:a6:
c9:42:0b:3e:10:59:ca:c9:d1:33:95:de:61:93:2d:
3e:40:fb:93:8e:93:d1:ce:35:a7:3c:93:c4:ca:a6:
70:7c:3a:26:11:38:59:1b:f6:6f:0d:a5:4c:99:b6:
79:10:d5:ba:84:f2:2a:25:56:1a:f4:62:05:d9:78:
9b:a1:56:e2:eb:e6:ba:b0:5e:01:79:00:65:8a:18:
30:92:24:61:93:32:2c:58:3e:d8:49:ef:ee:bf:ea:
6a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:17:67:D6:0C:F7:1D:D2:1D:77:0F:FE:93:36:EC:D5:8B:3C:DD:07
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/sxdn1gz3HdIddw_-kzbs1Ys83Qc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.193.11.0/24
Signature Algorithm: sha256WithRSAEncryption
01:20:00:1a:57:5b:ba:24:fd:1f:0d:68:a9:06:b9:39:6a:a1:
18:4f:7a:73:30:a1:40:7c:bf:7d:f1:27:df:41:5f:1b:31:ec:
46:f0:ba:73:c9:55:4d:aa:17:56:57:82:8c:17:76:19:6e:04:
19:78:6a:02:77:08:ac:c5:88:2c:06:e1:0b:50:3f:50:fc:f3:
b4:a2:3a:e4:c5:19:38:25:ef:19:40:6c:4b:a7:a6:c2:40:b4:
d2:5b:1a:d0:19:87:79:ea:97:8a:a1:8e:94:b9:e3:f5:e3:aa:
20:7f:67:f3:f5:cb:68:ad:cd:75:bd:9b:c6:06:23:82:28:de:
c0:b4:dc:01:d0:13:2f:18:d2:f9:f6:2c:bc:84:a5:a9:ec:a9:
38:53:f9:af:fb:6e:fe:c4:78:99:01:d7:52:52:11:1f:39:32:
3b:09:e0:9c:c2:44:1e:aa:86:98:98:ae:f5:92:e5:19:d2:f1:
9f:05:d5:7f:e0:66:ac:d7:6a:2f:8d:29:c6:78:0b:0d:ff:97:
08:a6:39:79:e2:d0:6c:8c:04:7b:c9:68:7f:87:dc:74:a0:1c:
95:c0:77:64:77:c5:cf:e0:39:b1:3e:c0:9b:d1:8e:9f:49:5c:
37:76:95:1f:68:54:ae:6f:0d:71:64:83:28:5b:46:c0:ac:98:
74:c6:58:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:28 2024 by rpki-client on console-fra.rpki-client.org